UBUNTU-CVE-2023-52633

In the Linux kernel, the following vulnerability has been resolved: um: time-travel: fix time corruption In 'basic' time-travel mode without =inf-cpu or =ext, we still get timer interrupts. These can happen at arbitrary points in time, i.e. while in timerread, which pushes time forward just a...

The vulnerability of the formWifiBasicSet function in the microprogramming software for Tenda FH1203 allows a hacker to remotely influence the privacy, integrity, and accessibility of the protected information.

The vulnerability of the formWifiBasicSet function in the microprogramming software for Tenda FH1203 is related to the possibility of buffer overflow based on a stack. Exploiting this vulnerability can allow an attacker to influence the confidentiality, integrity, and accessibility of the protect...

CVE-2024-30632

Tenda FH1205 v2.0.0.7775 has a stack overflow vulnerability in the security5g parameter from formWifiBasicSet function...

WordPress Calendarista Basic Edition plugin <= 3.0.5 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Mochamad Sofyan Patchstack Alliance in WordPress Plugin Calendarista Basic Edition versions = 3.0.5...

VulnCheck KEV: CVE-2024-30534

Missing Authorization vulnerability in typps Calendarista Basic Edition calendarista-basic-edition.This issue affects Calendarista Basic Edition: from n/a through = 3.0.5...

WordPress Calendarista Basic Edition Plugin <= 3.0.5 is vulnerable to Broken Access Control

Software Calendarista Basic Edition Type Plugin Vulnerable versions = 3.0.5 Fixed in 3.0.6 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-30534 Patch priority Medium CVSS severity Medium 6.5 Developer Typps PSID 013b5129fc7c Credits Mochamad Sofyan Requir...

CVE-2024-30586

Tenda FH1202 v1.2.0.14408 has a stack overflow vulnerability in the security5g parameter of the formWifiBasicSet function...

PT-2024-2454 · Tenda · Tenda F1203

Name of the Vulnerable Software and Affected Versions: Tenda FH1203 version 2.0.1.6 Description: The issue is related to a stack overflow vulnerability in the security 5g parameter of the formWifiBasicSet function. This vulnerability can be exploited by a remote attacker to impact the...

Tenda FH1202 安全漏洞

The Tenda FH1202 is a dual-band wireless router from the Tenda brand, designed for large homes, small offices, or business and leisure areas, and designed to provide stable wireless network coverage and high-speed transmission. The Tenda FH1202 suffers from a stack buffer overflow vulnerability...

Tenda FH1203 安全漏洞

Tenda FH1203 is a dual-band wireless router from Tenda China, mainly used for home network coverage. The Tenda FH1203 suffers from a buffer overflow vulnerability that originates from the security5g parameter of the formWifiBasicSet method failing to properly validate the length size of the input...

Tenda AC7 fromSetWifiGusetBasic Method Buffer Overflow Vulnerability

Tenda AC7 is a 1200M dual-band wireless router designed for large households by Tenda Technology, which adopts the 802.11ac standard and supports dual-band concurrent transmission with a wireless rate of up to 1167Mbps. Tenda AC7 suffers from a buffer overflow vulnerability that originates from a...

PT-2024-23537 · Tenda · Tenda Fh1205

Name of the Vulnerable Software and Affected Versions: Tenda FH1205 version 2.0.0.7775 Description: The issue is related to a stack overflow vulnerability in the security parameter from the formWifiBasicSet function. Recommendations: For Tenda FH1205 version 2.0.0.7775, as a temporary workaround,...

Discovery and Basic Configuration Protocol Access Control Error Vulnerability

Discovery and Basic Configuration Protocol is a discovery and basic configuration protocol used by engineering tools and controllers to discover devices, identify device information, and configure device settings such as PROFINET device names, IP addresses, and so on in a PROFINET network. An...

CVE-2021-47179 NFSv4: Fix a NULL pointer dereference in pnfs_mark_matching_lsegs_return()

In the Linux kernel, the following vulnerability has been resolved: NFSv4: Fix a NULL pointer dereference in pnfsmarkmatchinglsegsreturn Commit de144ff4234f changes pnfsreturnlayout to call pnfsmarkmatchinglsegsreturn passing NULL as the struct pnfslayoutrange argument. Unfortunately,...

CVE-2021-47179

In the Linux kernel, the following vulnerability has been resolved: NFSv4: Fix a NULL pointer dereference in pnfsmarkmatchinglsegsreturn Commit de144ff4234f changes pnfsreturnlayout to call pnfsmarkmatchinglsegsreturn passing NULL as the struct pnfslayoutrange argument. Unfortunately,...

CVE-2024-27993

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in typps Calendarista Basic Edition calendarista-basic-edition.This issue affects Calendarista Basic Edition: from n/a through = 3.0.2...

CVE-2024-27993

The CVE-2024-27993 entry describes an Improper Neutralization of Input During Web Page Generation (XSS) vulnerability in Typps Calendarista Basic Edition, affecting Calendarista Basic Edition versions up to 3.0.2. The provided data lists a CVSS v3.1 base score of 7.1 (HIGH) with Network attack ve...

PT-2024-22191 · Typps · Typps Calendarista Basic Edition

Name of the Vulnerable Software and Affected Versions: Typps Calendarista Basic Edition versions 3.0.2 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for potential malicious script...

Shodan Dorks

Shodan Dorks by twitter.com/lothos612 Feel free to make suggestions Shodan Dorks Basic Shodan Filters city: Find devices in a particular city. city:"Bangalore" country: Find devices in a particular country. country:"IN" geo: Find devices by giving geographical coordinates...

VulnCheck KEV: CVE-2024-27993

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in typps Calendarista Basic Edition calendarista-basic-edition.This issue affects Calendarista Basic Edition: from n/a through = 3.0.2...